Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-36958

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix nfsd4_encode_fattr4() crasher Ensure that args.acl is initialized early. It is used in an unconditional call to kfree() on the way out of nfsd4_encode_fattr4().

Published

2024-05-30T16:15:18.673

Last Modified

2025-10-01T14:07:31.347

Status

Analyzed

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

Severity

CVSSv3.1: 5.5 (MEDIUM)

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System linux linux_kernel < 6.8.10 Yes
Operating System linux linux_kernel 6.9 Yes
Operating System linux linux_kernel 6.9 Yes
Operating System linux linux_kernel 6.9 Yes
Operating System linux linux_kernel 6.9 Yes
Operating System linux linux_kernel 6.9 Yes
Operating System linux linux_kernel 6.9 Yes
Application netapp converged_systems_advisor_agent - Yes
Application netapp solidfire_\&_hci_management_node - Yes
Application netapp solidfire_\&_hci_storage_node - Yes
Operating System netapp hci_compute_node - Yes
Operating System netapp h300s_firmware - Yes
Hardware netapp h300s - No
Operating System netapp h500s_firmware - Yes
Hardware netapp h500s - No
Operating System netapp h700s_firmware - Yes
Hardware netapp h700s - No
Operating System netapp h410s_firmware - Yes
Hardware netapp h410s - No
Operating System netapp h410c_firmware - Yes
Hardware netapp h410c - No
References